Ralf S. Engelschall ePerl 2.2.12 - Handling of ISINDEX Query

Ralf S. Engelschall ePerl 2.2.12 - Handling of ISINDEX Query source: https://www.securityfocus.com/bid/151/info A bug exists in ePerl's handling of the ISINDEX queries. When ISINDEX is used, the query is passed on the command line by the web server. This would allow an attacker to execute arbitra...

Ralf S. Engelschall ePerl 2.2.12 - Handling of ISINDEX Query

source: https://www.securityfocus.com/bid/151/info A bug exists in ePerl's handling of the ISINDEX queries. When ISINDEX is used, the query is passed on the command line by the web server. This would allow an attacker to execute arbitrary code via the ePerl interpreter, with none of the...

CVE-1999-1179

Vulnerability in man.sh CGI script, included in May 1998 issue of SysAdmin Magazine, allows remote attackers to execute arbitrary commands...

IRIX 6.4 - pfdisplay.cgi Code Execution

IRIX 6.4 - pfdisplay.cgi Code Execution source: https://www.securityfocus.com/bid/64/info There exists a security vulnerability with the CGI program pfdispaly.cgi distributed with IRIX. This problem its not fixed by patch 3018. $ lynx -dump...

Info2www 1.01.1 - CGI Input Handling

Info2www 1.01.1 - CGI Input Handling source: https://www.securityfocus.com/bid/1995/info The info2www script allows HTTP access to information stored in GNU EMACS Info Nodes. This script fails to properly parse input and can be used to execute commands on the server with permissions of the web...

Info2www 1.0/1.1 - CGI Input Handling

source: https://www.securityfocus.com/bid/1995/info The info2www script allows HTTP access to information stored in GNU EMACS Info Nodes. This script fails to properly parse input and can be used to execute commands on the server with permissions of the web server, by passing commands as part of ...

CVE-1999-0266

The info2www CGI script allows remote file access or remote command execution...

CVE-1999-0021

Arbitrary command execution via buffer overflow in Count.cgi wwwcount cgi-bin program...

CVE-1999-0346

CGI PHP mlog script allows an attacker to read any file on the target server...

Muhammad A. Muquit wwwcount 2.3 - Count.cgi Remote Buffer Overflow

Muhammad A. Muquit wwwcount 2.3 - Count.cgi Remote Buffer Overflow // source: https://www.securityfocus.com/bid/128/info Wwwcount count.cgi is a very popular CGI program used to track website usage. In particular, it enumerates the number of hits on given webpages and increments them on a...

Muhammad A. Muquit wwwcount 2.3 - 'Count.cgi' Remote Buffer Overflow

// source: https://www.securityfocus.com/bid/128/info Wwwcount count.cgi is a very popular CGI program used to track website usage. In particular, it enumerates the number of hits on given webpages and increments them on a 'counter'. In October of 1997 two remotely exploitable problems were...

CVE-1999-0148

The handler CGI program in IRIX allows arbitrary command execution...

CVE-1999-0237

Remote execution of arbitrary commands through Guestbook CGI program...

CVE-1999-0146

The campas CGI program provided with some NCSA web servers allows an attacker to execute arbitrary commands via encoded carriage return characters in the query string, as demonstrated by reading the password file...

NCSA httpd-campas 1.2 - sample script

NCSA httpd-campas 1.2 - sample script source: https://www.securityfocus.com/bid/1975/info Campas is a sample CGI script shipped with some older versions of NCSA HTTPd, an obsolete web server package. The versions that included the script could not be determined as the server is no longer...

NCSA httpd-campas 1.2 - sample script

source: https://www.securityfocus.com/bid/1975/info Campas is a sample CGI script shipped with some older versions of NCSA HTTPd, an obsolete web server package. The versions that included the script could not be determined as the server is no longer maintained, but version 1.2 of the script itse...

SGI IRIX 6.4 - cgi-bin handler

SGI IRIX 6.4 - cgi-bin handler source: https://www.securityfocus.com/bid/380/info A vulnerability exists in the cgi-bin program 'handler', as included by Silicon Graphics in their Irix operating system. This vulnerability will allow a remote attacker to execute arbitrary commands on the vulnerabl...

SGI IRIX 6.4 - cgi-bin handler

source: https://www.securityfocus.com/bid/380/info A vulnerability exists in the cgi-bin program 'handler', as included by Silicon Graphics in their Irix operating system. This vulnerability will allow a remote attacker to execute arbitrary commands on the vulnerable host as the user the web serv...

CVE-1999-1067

SGI MachineInfo CGI program, installed by default on some web servers, prints potentially sensitive system status information, which could be used by remote attackers for information gathering activities...

CVE-1999-0039

webdist CGI program webdist.cgi in SGI IRIX allows remote attackers to execute arbitrary commands via shell metacharacters in the distloc parameter...